Merge pull request #1774 from SEKOIA-IO/update/sekoia-agent

update(sekoia-agent): add an example
SEKOIA-IO · May 6, 2024 · 94aff00 · 94aff00
2 parents 271da74 + 0af43cd
commit 94aff00
Showing 1 changed file with 10 additions and 0 deletions.
diff --git a/docs/xdr/features/collect/integrations/endpoint/sekoiaio.md b/docs/xdr/features/collect/integrations/endpoint/sekoiaio.md
@@ -368,6 +368,16 @@ If you want to enable this feature, follow these steps:
 
     For example, an intake key from the NGINX format is required for watching NGINX access logs.
 
+If you want to collect multiple source files, just add a new entry in the configuration. For instance:
+
+    ```yaml
+    logfiles:
+        - filepath: /var/log/nginx/access.log  # Path to the file to watch
+        intakekey: {intake_key_nginx}  # Intake key to use to send the events
+        - filepath: /var/log/apache2/access.log
+        intakekey: {intake_key_apache}
+	```
+
 Once the configuration file is modified, restart the agent:
 
 === "Windows"